Privacy Policy
Introduction
MySolas Pty Ltd ACN 674 932 784 (referred to as “MySolas”, “we”, “our” or “us”) respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, store, use and disclose personal information when you access or use the MySolas Platform located at:
We comply with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs) and the National Disability Insurance Scheme Act 2013 (Cth).
By accessing or using the MySolas Platform you agree to the terms of this Privacy Policy.
2. Scope of This Policy
This Privacy Policy applies to:
• participants, carers and family members
• NDIS providers and organisations
• job seekers
• event attendees
• marketplace users
• visitors to our website
• individuals who contact us
• contractors, volunteers and partners
• individuals who access MySolas Careers, MySolas Events, MySolas Marketplace, MySolas Insights and MySolas Match
This policy explains the personal information that we collect, how we use it and the choices that you have.
3. Types of Information Collected
3.1 Personal Information
We may collect personal information including:
• full name and date of birth
• email address, phone number and contact details
• account information and login credentials
• profile information and photographs
• NDIS participant number
• NDIS plan details where provided by you
• your occupation and preferences
• your organisation or business details
• relationship information (for carers and representatives)
• documents uploaded by you, including identification documents
• information contained in messages, posts, listings or event submissions
• information collected from third parties that you authorise
• marketplace purchase or listing details (excluding payment card information)
3.2 Sensitive Information
We may collect Sensitive Information only when you consent or when the law permits. This may include:
• health information
• disability related information
• criminal history information
• working with children checks
• NDIS worker screening results
• racial or ethnic origin
• sexual orientation or gender identity where voluntarily disclosed
Sensitive Information is handled with higher protection and restricted access.
3.3 Automatically Collected Information
When you access the MySolas Platform, we may automatically collect:
• IP address and device identifiers
• browser type and version
• operating system
• session logs
• usage activity
• pages viewed
• approximate location information
• error logs
• interaction with features including MySolas Match and Marketplace
This information helps us secure the platform and improve user experience.
3.4 Cookies and Tracking Technologies
We use cookies and similar technologies to:
• operate the website
• remember your preferences
• assist with login
• measure usage and performance
• improve services
• support authentication and security
You may adjust your browser settings to reject cookies, although some features may not operate correctly.
4. How We Collect Information
We collect personal information in the following ways:
• when you create an account
• when you update your profile
• when you upload documents or information
• when you participate in MySolas Match, Events, Careers or Marketplace
• when you post content, submit forms or contact us
• when you interact with other users
• when you provide feedback or lodge a complaint
• through third party integrations and service providers that you authorise
• through automated technology such as logs and cookies
We collect only what is reasonably necessary for our functions and activities.
5. Purposes of Collection and Use
We may use your personal information for the following purposes:
5.1 To operate the MySolas Platform
• account creation and verification
• profile management
• matching participants with providers
• marketplace listings and transactions
• job postings and applications
• event listings and registrations
• insights, community posts and communication tools
5.2 To provide support and improve services
• respond to enquiries and complaints
• personalise your user experience
• analytics and service optimisation
• research and feature development
• platform testing and quality assurance
5.3 To ensure safety and compliance
• identity and provider verification
• fraud prevention
• monitoring misuse or policy breaches
• compliance with the NDIS Act, disability standards and legal obligations
5.4 For legal, regulatory and reporting obligations
• NDIS reporting where required
• cooperation with law enforcement
• responding to court orders or legal processes
• mandatory reporting to government agencies
5.5 Communications and promotions
We may send service updates, notifications, feature announcements and relevant marketing communications. You may opt out of marketing communications at any time.
6. Disclosure of Personal Information
We may disclose your information to:
• service providers who support our operations, including cloud hosting, analytics, IT services and communications
• identity and verification vendors
• payment processors (personal financial data is stored by third party providers, not by MySolas)
• NDIS Commission or NDIA where required
• government agencies and regulators
• law enforcement when required by law
• contractors, employees and volunteers who require access to perform their duties
• other users of the platform when you choose to share information publicly or through listings
We do not sell personal information to any third party.
7. Overseas Disclosure
Our technology stack may involve overseas service providers for functions such as:
• cloud hosting
• analytics
• messaging
• email delivery
• document storage
• technical support
These providers may store or process data in jurisdictions including but not limited to the United States, Europe, Singapore and New Zealand.
We ensure that reasonable steps are taken so that overseas recipients handle personal information in accordance with the APPs.
8. Data Storage, Security and Retention
8.1 Security
We use administrative, technical and physical safeguards to protect your information. These measures include:
• encryption of data in transit
• secure cloud hosting
• access control based on need to know
• staff confidentiality agreements
• regular audits and security reviews
• monitoring for suspicious activity
8.2 Data Retention
We retain personal information for as long as needed to:
• provide services
• comply with legal obligations
• resolve disputes
• maintain records required under the NDIS Act or other laws
Information that is no longer required will be securely destroyed or anonymised.
9. Access, Correction and Deletion of Personal Information
You may request:
• access to your personal information
• correction of inaccurate information
• deletion of your account and associated data
• withdrawal of consent for certain data processing activities
• copies of documents that you have provided
We will respond to requests within a reasonable time.
If we refuse a request, we will provide written reasons and explain how you may lodge a complaint.
10. Children and Vulnerable Persons
Some users may have guardians, nominees or authorised representatives. When relevant:
• consent may be provided on the user’s behalf
• communication may be directed through a guardian
• decisions regarding personal information may involve representatives
We do not knowingly collect information from persons under 18 without appropriate consent.
11. Notifiable Data Breaches
If a data breach occurs that is likely to result in serious harm, we will:
• notify affected individuals
• notify the Office of the Australian Information Commissioner (OAIC)
• take steps to reduce risk and prevent recurrence
Details of the OAIC Notifiable Data Breaches Scheme are available at:
https://www.oaic.gov.au/privacy/data-breaches
12. Complaints and Concerns
If you believe your privacy has been breached, you may contact us using the details in section 13. We will respond as soon as reasonably possible.
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner at:
https://www.oaic.gov.au/privacy/privacy-complaints
13. Contact Information
Email: hello@mysolas.com.au
Postal Address: Level 2, 106 City Road, Beenleigh, Queensland
Website: https://mysolas.com.au
Please direct all privacy enquiries to the MySolas Privacy Officer.
14. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in law, technology or our operations. Updated versions will be published at:
https://mysolas.com.au/privacy-policy
Continued use of the platform after updates indicates acceptance of the revised policy.